Lucene search
K

21 matches found

Oracle linux
Oracle linux
added 2024/09/02 12:0 a.m.61 views

virt:kvm_utils2 security update

hivex libguestfs libguestfs-winsupport 8.6-1 - Rebase to ntfs-3g 2021.8.22 - Fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE-2021-39254 resolves: rhbz2004490...

8.8CVSS8.9AI score0.93838EPSS
Exploits55
SUSE CVE
SUSE CVE
added 2023/02/15 3:40 a.m.3 views

SUSE CVE-2021-33285

In NTFS-3G versions 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfsgetattributevalue, a heap buffer overflow can occur allowing for memory disclosure or denial of service. The vulnerability is caused by an out-of-bound buffer access which can be triggered by...

7.8CVSS7.2AI score0.00415EPSS
Exploits0References7
Oracle linux
Oracle linux
added 2022/05/17 12:0 a.m.96 views

virt:ol and virt-devel:ol security, bug fix, and enhancement update

hivex 1.3.18-23 - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976194 1.3.18-22.el8 - Resolves: bz2000225 Rebase virt:rhel module:stream based on AV-8.6 libguestfs 1.44.0-5.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug:...

7.8CVSS7.1AI score0.04794EPSS
Exploits6
OSV
OSV
added 2022/05/10 7:59 a.m.33 views

ALSA-2022:1759 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

7.8CVSS7.9AI score0.04794EPSS
Exploits4References30
Rockylinux
Rockylinux
added 2022/05/10 7:59 a.m.34 views

virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

An update is available for libguestfs, libnbd, libtpms, libguestfs-winsupport, nbdkit, supermin, libiscsi, hivex, libvirt, netcf, perl-Sys-Virt, seabios, qemu-kvm, swtpm, virt-v2v, sgabios, libvirt-dbus, libvirt-python. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS...

7.8CVSS8.1AI score0.04794EPSS
Exploits4
CBLMariner
CBLMariner
added 2022/04/26 7:57 p.m.23 views

CVE-2021-33285 affecting package ntfs-3g for versions less than 2021.8.22-1

CVE-2021-33285 affecting package ntfs-3g for versions less than 2021.8.22-1. An upgraded version of the package is available that resolves this issue...

7.8CVSS7.9AI score0.00415EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/12/26 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for ntfs-3g (EulerOS-SA-2021-2807)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00488EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/12/25 12:0 a.m.38 views

EulerOS 2.0 SP8 : ntfs-3g (EulerOS-SA-2021-2807)

According to the versions of the ntfs-3g packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In NTFS-3G versions 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfsgetattributevalue, a heap buffer overflo...

7.8CVSS7.7AI score0.00488EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2021/11/17 12:0 a.m.59 views

Debian DLA-2819-1 : ntfs-3g - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2819 advisory. - In NTFS-3G versions 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfsgetattributevalue, a heap buffer overflow can occur allowi...

7.8CVSS7.8AI score0.00488EPSS
Exploits0References46
Debian
Debian
added 2021/11/16 10:56 p.m.43 views

[SECURITY] [DLA 2819-1] ntfs-3g security update

Debian LTS Advisory DLA-2819-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany November 16, 2021 https://wiki.debian.org/LTS Package : ntfs-3g Version : 1:2016.2.22AR.1+dfsg-1+deb9u2 CVE ID : CVE-2021-33285 CVE-2021-33286 CVE-2021-33287 CVE-2021-33289 CVE-2021-352...

7.8CVSS6.8AI score0.00488EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/10/01 12:0 a.m.58 views

RHEL 8 : virt:av and virt-devel:av (RHSA-2021:3703)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3703 advisory. The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Re...

8.5CVSS6.9AI score0.02904EPSS
Exploits1References54
Tenable Nessus
Tenable Nessus
added 2021/10/01 12:0 a.m.45 views

RHEL 8 : virt:8.2 and virt-devel:8.2 (RHSA-2021:3704)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3704 advisory. The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Re...

8.5CVSS7AI score0.02904EPSS
Exploits1References51
OpenVAS
OpenVAS
added 2021/09/10 12:0 a.m.27 views

Debian: Security Advisory (DSA-4971-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00488EPSS
Exploits0References4
ALT Linux
ALT Linux
added 2021/09/10 12:0 a.m.33 views

Security fix for the ALT Linux 9 package ntfs-3g version 2:2021.8.22-alt1

2:2021.8.22-alt1 built Sept. 10, 2021 Valery Inozemtsev in task 284295 Aug. 31, 2021 Valery Inozemtsev - 2021.8.22 Fixes: CVE-2021-33285, CVE-2021-35269, CVE-2021-35268, CVE-2021-33289, CVE-2021-33286, CVE-2021-35266, CVE-2021-33287, CVE-2021-35267, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253,...

6.9CVSS7.1AI score0.00488EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/09/10 12:0 a.m.56 views

openSUSE 15 Security Update : ntfs-3g_ntfsprogs (openSUSE-SU-2021:1244-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1244-1 advisory. - An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially exploit this by running /bin/ntfs-3g with...

7.8CVSS7.8AI score0.00531EPSS
Exploits0References44
Debian
Debian
added 2021/09/09 7:15 p.m.37 views

[SECURITY] [DSA 4971-1] ntfs-3g security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4971-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 09, 2021 https://www.debian.org/security/faq -...

6.9CVSS2.2AI score0.00488EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/09/08 12:0 a.m.37 views

openSUSE: Security Advisory for ntfs-3g_ntfsprogs (openSUSE-SU-2021:2971-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.4AI score0.00531EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/09/08 12:0 a.m.49 views

SUSE SLED15 / SLES15 Security Update : ntfs-3g_ntfsprogs (SUSE-SU-2021:2971-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2971-1 advisory. Update to version 2021.8.22 bsc1189720: Fixed compile error when building with libfuse vs...

7.8CVSS6.7AI score0.00531EPSS
Exploits0References44
NVD
NVD
added 2021/09/07 2:15 p.m.27 views

CVE-2021-33285

In NTFS-3G versions 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfsgetattributevalue, a heap buffer overflow can occur allowing for memory disclosure or denial of service. The vulnerability is caused by an out-of-bound buffer access which can be triggered by...

7.8CVSS0.00415EPSS
Exploits0References10
CVE
CVE
added 2021/09/07 12:0 a.m.244 views

CVE-2021-33285

NTFS-3G vulnerability (CVE-2021-33285) affects versions before 2021.8.22. A crafted NTFS attribute input to ntfs_get_attribute_value can trigger an out-of-bounds heap access due to a missing consistency check after reading an MFT record; if bytes_in_use is not less than bytes_allocated, parsing c...

7.8CVSS7.6AI score0.00415EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder